
1 1. A dynamic file access control and management system configured to access one or more 

2 content sources including a set of files, said system comprising: 

3 A a proxy system linked to said one or more content sources, said proxy system 

4 comprising an access control module configured to selectively obtain a file from 

5 said content sources as a function of an authorization of a user requesting said file 

6 and a set of access policies; 

7 B. a rights management module configured to generate a set of usage rights 

8 associated with said file as a function of a set of predefined usage policies 

9 associated with said file for said user; 

10 C. at least one client device having a client module configured to interface to a client 

1 1 operating system, said client module configured to selectively inhibit operating 

12 system functions with respect to said file as a function of said usage rights; and 

13 D. one or more communication means, via which said file and said usage rights are 

14 provided to said client device. 

1 2. The system according to claim 1, wherein said file and said usage rights are provided to 

2 said client device via different communication means. 

1 3. The system according to claim 1, wherein said files are static files. 

1 4. The system according to claim 1, wherein said files are dynamic files. 



2 



1 5. (Amended) The system according to claim 1, wherein said communication means includes a 

2 secure transform configured to encrypt and encapsulate said file into a message as a function of a 
3 session ID and said client is configured to extract said file from said message. 

1 6. The system according to claim 1 , wherein said proxy system further includes a user 

2 interface, configured to facilitate creation and editing of said access policies and said usage 

3 policies and association of said access policies and said usage policies with said files. 
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7. (Amended) The system as in claim 1, wherein said client device is a device from a group 


2 


comprising: 




3 


1) 


a personal computer; 




2) 


a workstation; 


5 


3) 


a personal digital assistant; 


6 


4) 


an e-mail device; 


7 


5) 


a cellular telephone; 


8 


6) 


a Web enabled appliance; and 


9 


7) 


a server. 



1 8. The system of claim 1, wherein said proxy system and at least one of said content sources 

2 are hosted on the same computing device. 

1 9. (Amended) A method of dynamic file access control and management comprising: 

2 A. to each of a set of files accessible from a set of content sources by a proxy system, 

3 correlating one or more user and/or client device identifications and defining a set 

4 of usage policies, wherein for a given file said usage policies relate to selectively 

5 enabling or disabling operations associated with said file; 
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B. 


by said proxy system, generating a set of usage rights associated with a target file 
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D. 


using a client module at said client device and configured to interface to a client 
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operating system, selectively inhibiting operating system functions with respect to 
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said target file as a function of said usage rights. 



1 10. (New) The method of claim 9, wherein in step C, said communicating is accomplished by 

2 communicating said target file and said usage rights to said client device via different 

3 communication means. 




1 11. (New) The method of claim 9, wherein said set of files include static files. 



1 12. (New) The method of claim 9, wherein said set of files include dynamic files. 

1 13. (New) The method of claim 9, wherein said communicating is accomplished using a 

2 communication means that includes a secure transform, including encrypting and encapsulating 

3 said target file into a message as a function of a session ID and said client device is configured to 

4 extract said target file from said message. 

1 14. (New) The method of claim 9, wherein said proxy system further includes a user interface 

2 and step A include creating and/or editing said access policies and said usage policies and 

3 associating said access policies and said usage policies with said set of files using said user 

4 interface. 

1 15. (New) The method of claim 9, wherein said client device is a device from a group 

2 comprising: 

3 1) a personal computer; 

4 2) a workstation; 

5 3) a personal digital assistant; 



6 4) an e-mail device; 

I 7 5) a cellular telephone; 

8 6) a Web enabled appliance; and 

7) a server. 



1 16. (New) The method of claim 9, further comprising hosting said proxy system and at least one 

2 content source on the same computing device. 
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